CVE-2005-1409
First published: Tue May 03 2005(Updated: )
PostgreSQL 7.3.x through 8.0.x gives public EXECUTE access to certain character conversion functions, which allows unprivileged users to call those functions with malicious values, with unknown impact, aka the "Character conversion vulnerability."
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PostgreSQL PostgreSQL | =8.0.2 | |
| PostgreSQL PostgreSQL | =7.2.7 | |
| PostgreSQL PostgreSQL | =7.3.3 | |
| PostgreSQL PostgreSQL | =7.3 | |
| PostgreSQL PostgreSQL | =7.4.1 | |
| PostgreSQL PostgreSQL | =7.3.9 | |
| PostgreSQL PostgreSQL | =7.2.3 | |
| PostgreSQL PostgreSQL | =7.2.6 | |
| PostgreSQL PostgreSQL | =7.4.6 | |
| PostgreSQL PostgreSQL | =7.4.7 | |
| PostgreSQL PostgreSQL | =7.4.3 | |
| PostgreSQL PostgreSQL | =7.3.6 | |
| PostgreSQL PostgreSQL | =7.2.5 | |
| PostgreSQL PostgreSQL | =7.4.5 | |
| PostgreSQL PostgreSQL | =7.3.8 | |
| PostgreSQL PostgreSQL | =7.4 | |
| PostgreSQL PostgreSQL | =7.4.4 | |
| PostgreSQL PostgreSQL | =8.0.1 | |
| PostgreSQL PostgreSQL | =7.2.2 | |
| PostgreSQL PostgreSQL | =7.3.2 | |
| PostgreSQL PostgreSQL | =7.3.5 | |
| PostgreSQL PostgreSQL | =7.2.4 | |
| PostgreSQL PostgreSQL | =7.3.1 | |
| PostgreSQL PostgreSQL | =7.3.7 | |
| PostgreSQL PostgreSQL | =7.2.1 | |
| PostgreSQL PostgreSQL | =7.4.2 | |
| PostgreSQL PostgreSQL | =8.0 | |
| PostgreSQL PostgreSQL | =7.3.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.postgresql.org/about/news.315
- http://archives.postgresql.org/pgsql-announce/2005-05/msg00001.php
- http://www.redhat.com/support/errata/RHSA-2005-433.html
- http://www.securityfocus.com/bid/13476
- http://www.novell.com/linux/security/advisories/2005_36_sudo.html
- http://www.vupen.com/english/advisories/2005/0453
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A676
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10050
- http://www.securityfocus.com/archive/1/426302/30/6680/threaded
- agent/type
- agent/remedy
- agent/last-modified-date
- agent/first-publish-date
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/softwarecombine
- agent/tags
- agent/event
- agent/description
- collector/mitre-cve
- source/MITRE
- vendor/postgresql
- canonical/postgresql postgresql
- version/postgresql postgresql/8.0.2
- version/postgresql postgresql/7.2.7
- version/postgresql postgresql/7.3.3
- version/postgresql postgresql/7.3
- version/postgresql postgresql/7.4.1
- version/postgresql postgresql/7.3.9
- version/postgresql postgresql/7.2.3
- version/postgresql postgresql/7.2.6
- version/postgresql postgresql/7.4.6
- version/postgresql postgresql/7.4.7
- version/postgresql postgresql/7.4.3
- version/postgresql postgresql/7.3.6
- version/postgresql postgresql/7.2.5
- version/postgresql postgresql/7.4.5
- version/postgresql postgresql/7.3.8
- version/postgresql postgresql/7.4
- version/postgresql postgresql/7.4.4
- version/postgresql postgresql/8.0.1
- version/postgresql postgresql/7.2.2
- version/postgresql postgresql/7.3.2
- version/postgresql postgresql/7.3.5
- version/postgresql postgresql/7.2.4
- version/postgresql postgresql/7.3.1
- version/postgresql postgresql/7.3.7
- version/postgresql postgresql/7.2.1
- version/postgresql postgresql/7.4.2
- version/postgresql postgresql/8.0
- version/postgresql postgresql/7.3.4